/* * Copyright © 2024 Hexastack. All rights reserved. * * Licensed under the GNU Affero General Public License v3.0 (AGPLv3) with the following additional terms: * 1. The name "Hexabot" is a trademark of Hexastack. You may not use this name in derivative works without express written permission. * 2. All derivative works must include clear attribution to the original creator and software, Hexastack and Hexabot, in a prominent location (e.g., in the software's "About" section, documentation, and README file). */ import { ValidationPipe } from '@nestjs/common'; import { NestFactory } from '@nestjs/core'; import bodyParser from 'body-parser'; import session from 'express-session'; import moduleAlias from 'module-alias'; import { resolveDynamicProviders } from 'nestjs-dynamic-providers'; import passport from 'passport'; moduleAlias.addAliases({ '@': __dirname, }); import { HexabotModule } from './app.module'; import { config } from './config'; import { LoggerService } from './logger/logger.service'; import { seedDatabase } from './seeder'; import { swagger } from './swagger'; import { getSessionStore } from './utils/constants/session-store'; import { ObjectIdPipe } from './utils/pipes/object-id.pipe'; async function bootstrap() { const isProduction = config.env.toLowerCase().includes('prod'); await resolveDynamicProviders(); const app = await NestFactory.create(HexabotModule, { bodyParser: false, }); const rawBodyBuffer = (req, res, buf, encoding) => { if (buf?.length) { req.rawBody = buf.toString(encoding || 'utf8'); } }; app.use(bodyParser.urlencoded({ verify: rawBodyBuffer, extended: true })); app.use(bodyParser.json({ verify: rawBodyBuffer })); app.enableCors({ origin: config.security.cors.allowOrigins, methods: config.security.cors.methods, credentials: config.security.cors.allowCredentials, allowedHeaders: config.security.cors.headers.split(','), }); app.useGlobalPipes( new ValidationPipe({ whitelist: true, transform: true, // forbidNonWhitelisted: true, }), new ObjectIdPipe(), ); app.use( session({ name: config.session.name, secret: config.session.secret, proxy: config.security.trustProxy, resave: true, saveUninitialized: false, store: getSessionStore(), cookie: { httpOnly: true, secure: config.security.httpsEnabled, path: '/', maxAge: isProduction ? 1000 * 60 * 60 * 24 //prod 24h : 1000 * 60 * 60, //dev 1h }, }), ); app.use(passport.initialize()); app.use(passport.session()); process.on('uncaughtException', (error) => { if (error.stack.toLowerCase().includes('smtp')) app.get(LoggerService).error('SMTP error', error.stack); else throw error; }); if (!isProduction) { await seedDatabase(app); swagger(app); } await app.listen(3000); } bootstrap();